COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2020-11023

CVE-2020-11023

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2025-01-23
Reference
https://nvd.nist.gov/vuln/detail/CVE-2020-11023
⌖ exploited in the wild shame 50/100 exploited-in-wild

JQuery contains a persistent cross-site scripting (XSS) vulnerability. When passing maliciously formed, untrusted input enclosed in HTML tags, JQuery's DOM manipulators can execute untrusted code in the context of the user's browser.

Players implicated

JQuery · vendorJQuery · product

Description

JQuery contains a persistent cross-site scripting (XSS) vulnerability. When passing maliciously formed, untrusted input enclosed in HTML tags, JQuery's DOM manipulators can execute untrusted code in the context of the user's browser.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.